Secure Transport for Your Software Supply Chain with TUF
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore the secure transport protocol of open-source software supply chains in this 34-minute conference talk from CNCF. Delve into The Update Framework (TUF) and its role in securely distributing software artifacts and metadata. Learn about TUF's design for solving large-scale security challenges, covering hundreds of thousands of packages. Discover real-world applications in open-source package repositories, OCI registries, Sigstore, and Datadog. Watch a demonstration on bootstrapping and managing a TUF repository using a new open-source tool directly from CI. Gain insights into recent project updates and find out how to contribute to securing open-source software supply chains.
Syllabus
Secure Transport for Your Software Supply Chain with TUF - Marina Moore & Trishank Kuppusamy
Taught by
CNCF [Cloud Native Computing Foundation]